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REMARKS 

The non-final Office Action of May 24, 2006 considered and rejected claims 1-29 and 
31-40. Claims 1-3, 5-9, 13-18, 24-29, 31-36 and 38-40 were rejected under 35 U.S.C. § 102(b) 
as being anticipated by Wong et al. "A Role-Based Access Control Model for XML Repositories 
(hereinafter "Wong"). Claims 4, 10-12 and 19-23 were rejected under 35 U.S.C. § 103(a) as 
being unpatentable over Wong in view of Official Notice taken by the Examiner. Claim 37 was 
rejected under 35 U.S.C. § 103(a) as being unpatentable over Wong in view of Chapter 11 of 
"Stallings Cryptography and Network Security". 1 

By this paper, claims 1, 31, 32 34 and 36 have been amended, new claims 41-42 have 
been added, and claim 4 has been cancelled. 2 Accordingly, following this paper, claims 1-3, 5- 
29 and 31-42 remain pending, of which claims 1, 31, 34 and 36 are the only independent claims 
at issue. 

Applicants' invention generally relates to authorizing a user to operate on different types 
of data structures in a standard manner. As recited in claim 1 , for example, a method includes 
maintaining a plurality of role templates that define basic access permissions for one or more 
command methods. The access permissions are defined by the role templates in a manner that is 
independent of the type of data structure being accessed. In addition, and as clarified by the 
above amendments, the role templates are contained within one or more role map documents that 
are each specific to a particular computerized service that is configured to perform computerized 
operations on data structures. Further, a plurality of role definitions are maintained which define 
access permissions for requesting entities by using one or more of the role templates, and a 
request from the requesting entity is received so as to perform at least one of the command 

' Although the prior art status and some of the assertions made with regard to the cited art is not being 
challenged at this time, Applicants reserve the right to challenge the prior art status and assertions made with regard 
to the cited art, as well as any official notice, at any appropriate time in the future, should the need arise, such as, for 
example in a subsequent amendment or during prosecution of a related application. Accordingly, Applicants' 
decision not to respond to any particular assertions or rejections in this paper should not be construed as Applicants 
acquiescing to said assertions or rejections. 

2 Various amendments have been made merely to provide clarity to the claimed. Support for these 
amendments as well as other amendments and the new claims is found within the disclosure of Applicants' 
specification including at least the disclosure found in paragraphs [0007], [0010], [0013], [0027]-[0028] and [0087], 
as well as in the drawings, including Figure 3, of the originally filed application. The term "computerized" is also 
generally supported by the disclosure found throughout the application, as would be appreciated by one skilled in 
the art. paragraphs 
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methods. Moreover, a role definition corresponding to the requesting entity is identified, and 
access permissions for the requesting entity are determined with respect to the command method 
by using the role definition corresponding to the requesting entity and a corresponding service 
application, as identified by an application platform identifier. 

Applicants' invention, as claimed in independent method claim 31, is related to the 
foregoing method, and includes similar recitations, but is recited in functional (step for) 
language, while the invention as claimed in independent claim 34, recites a computer program 
product having physical computer-readable media storing computer-executable instructions for 
performing acts generally corresponding to the acts recited in claim 1 . Applicants' invention, as 
claimed for example in independent claim 36, is directed to a corresponding system which 
generally implements the method of claim 1 . 

In each of the independent claims, it is clearly recited that a role template defining access 
permissions with respect to one or more command methods is included within a role map 
document that is specific to a particular computerized service, as recited in combination with the 
other recited claim elements. For at least this reason, it is clear that Wong fails to anticipate or 
make obvious the claimed invention, either singly or in combination with the other art of record. 
In particular, Wong fails to teach or suggest role map documents which contain role templates 
and which are service specific, as recited in combination with the other recited claim elements. 3 



3 More particularly, Wong discloses an XML-based system for defining user roles and thereby determining 
access permissions of the users with respect to various documents. Specifically, Wong teaches the use and 
maintenance of an RBXACxml file which maintains, among other features, a list of users and a role tree. (pp. 143- 
44). In the list of users, each system user is identified by a unique ID and an optional RolePointer which identifies a 
"role" of which the user is a member, (p. 144). Each role is, in turn, stored within the role tree in the RBXAC xml 
document, (p. 144). The role tree provides a hierarchical arrangement of roles which define the name of each role 
and an identification of the functions available to a user having membership in the role. (pp. 141, 144). 

Accordingly, Wong teaches the use of an XML file to maintain various roles defining access permissions of 
system users, and the storage of the various roles within a role tree which is itself housed within the RBXAC_xml 
document. Wong fails, however, to teach or even suggest any service for which a role tree or RBXAC xml 
document may be specific. In fact, the single example presented in Wong teaches that the RBXAC xml and role 
tree are instead specific to an entire University, rather than to a particular service as claimed in combination with the 
other recited claim elements, (p. 144). Accordingly, the use of a single document and its included role tree for all 
users within the University, and apparently for all services accessible to the users, teaches away from and is in fact 
contrary to the teachings as claimed, in which a role map that contains the plurality of role templates is specific to a 
particular service. 
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In the last Office Action, it was asserted that Wong's University could comprise a 
"service" within a broad definition. Although Applicants disagree, the claims have been 
amended to clarify that the services are computerized services, and such that Wong's University 
will not be confusingly interpreted and applied to the claims as a service. In particular, it is clear 
that Wong's University is not a "computerized service that is configured to perform 
computerized operations on data structures," as claimed in combination with the other recited 
claim elements. This is particularly true when considering the embodiments recited in new 
claims 41 and 42, which explicitly recite that the service may be a calendar service, or a 
notification service, each having its own specific schema. 

Wong also clearly fails to teach or suggest that role definitions are identified and access 
permissions are determined at least in part based on a request received from the requesting entity 
that includes an identification of the requesting entity as well as an application platform identifier 
corresponding to an application of the computerized service. The limitation regarding the 
application platform identifier is based on claim 4 (which is now cancelled) and paragraphs 10 
and 82, as well as others. 

In the last action, claim 4 was rejected, notwithstanding this limitation, in view of official 
notice that an application can be identified, such as, for example, by the use of a domain. 
However, Applicants respectfully submit that the Office Action has failed to show how the 
domain is the same as an application. Furthermore, Applicants submit that it would not be 
obvious to modify Wong to include an application-platform identifier in the manner claimed 
when the corresponding service is a computerized service, as claimed, and something which has 
not yet been asserted. 

In view of the foregoing, Applicants respectfully submit that the other rejections to the 
claims are now moot and do not, therefore, need to be addressed individually at this time. 4 It 



4 Nevertheless, for the record, Applicants note with respect to claim 18, that Wong also fails to teach or 

suggest wherein one or more command methods includes a query command, as claimed in combination with the 
other recited elements. In particular, Wong discloses only that a user may query an XML database to obtain a list of 
a user's role memberships (p. 142), but fails to teach or suggest that the command methods the subject of basic 
access permissions in the role template, include a query command. 

With respect to claim 6, Applicants respectfully submit that Wong fails to teach or suggest wherein one or 
more scopes describing views on a data structure are defined, and particularly wherein the one or more scopes being 
defined are independent of the plurality of templates and further associating a method type with one of the one or 
more scopes. 
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will be appreciated, however, that this should not be construed as Applicants acquiescing to any 
of the purported teachings or assertions made in the last action regarding the cited art or the 
pending application, including any official notice. Instead, Applicants reserve the right to 
challenge any of the purported teachings or assertions made in the last action, including any 
official notice, at any appropriate time in the future, should the need arise. Furthermore, to the 
extent that the Examiner has relied on any Official Notice, explicitly or implicitly, Applicants 
traverse the Official Notice and specifically request that the Examiner provide references 
supporting the teachings officially noticed, as well as the required motivation or suggestion to 
combine the relied upon notice with the other art of record. 

In view of the foregoing, it is respectfully submitted that all claims should now be found 
in condition for prompt allowance over the cited references. In the event that the Examiner finds 
any remaining impediment to a prompt allowance of this application that may be clarified 
through a telephone interview, the Examiner is requested to contact the undersigned attorney. 

Dated this 21 st day of July, 2006. 



RDN:JCJ:CCN:ahy 
AHY0000001002V001 



With respect to claim 38, Applicants submit that Wong fails to teach or suggest maintaining one or more 
refined scopes independent of the role template and at the user level. 

With respect to claim 40, Applicants respectfully submit that Wong fails to teach or suggest, whether alone 
or in combination with the other art of record, wherein one or more role list documents are specific to a particular 
requesting entity. In fact, Wong appears to teach away from role lists which are specific to a particular requesting 
entity inasmuch as Wong defines a single file which contains the listing of all users. 



Respectfully submitted, 
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